This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft File: 5ZAclsdH6RYsrv5QFArlMhsjxXw.mft (raw, json) Hash identifier: 2NK8RJOmzE9UD/FW4zsuXjZnJ42l4Cz0hVq8qeMZZ5A= Subject key identifier: 5C:34:8C:4D:83:59:1F:7E:54:FC:57:5F:8C:5D:AF:69:84:8D:2E:10 Authority key identifier: E5:90:1C:96:C7:47:E9:16:2C:AE:FE:50:14:0A:E5:32:1B:23:C5:7C Certificate issuer: /CN=e5901c96c747e9162caefe50140ae5321b23c57c Certificate serial: 019C4510D43627432DC0972545531665501C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5ZAclsdH6RYsrv5QFArlMhsjxXw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft Manifest number: 035B Signing time: Tue 10 Feb 2026 01:00:56 +0000 Manifest this update: Tue 10 Feb 2026 01:00:56 +0000 Manifest next update: Wed 11 Feb 2026 01:00:56 +0000 Files and hashes: 1: 5ZAclsdH6RYsrv5QFArlMhsjxXw.crl (hash: U6GRTIbgggR2l2fBg7WiuLoBCpsUaY5u8T5ZxW8B6Qc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft rsync://rpki.ripe.net/repository/DEFAULT/5ZAclsdH6RYsrv5QFArlMhsjxXw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:10:d4:36:27:43:2d:c0:97:25:45:53:16:65:50:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5901c96c747e9162caefe50140ae5321b23c57c Validity Not Before: Feb 10 01:00:56 2026 GMT Not After : Feb 11 01:00:56 2026 GMT Subject: CN=5c348c4d83591f7e54fc575f8c5daf69848d2e10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:be:21:ea:66:34:b1:6d:8b:37:a9:20:b7:88: 72:0f:a3:88:3a:5b:b5:4d:38:b1:37:81:56:ab:71: 78:51:d7:a4:1c:d7:b4:b5:20:40:3a:79:f4:8c:ce: 0e:22:b9:76:ba:5b:7b:8f:99:7d:83:2d:4d:53:90: f4:27:f3:f5:de:77:de:80:bf:1a:74:05:18:e1:8f: 6f:18:c1:79:25:b8:e4:94:3e:ca:3f:77:93:1e:e5: 36:75:34:b6:58:fc:f4:73:98:8e:41:04:29:eb:40: 79:c6:aa:1f:54:20:5e:a8:c5:63:88:74:1e:5c:f2: 42:c6:4f:d9:6c:e9:74:73:dd:91:ad:5b:d8:70:e8: 2c:2b:71:cd:da:72:ff:4e:70:57:fb:48:bf:fa:37: 96:d8:c4:01:fb:ef:e2:37:d1:0f:2c:38:fc:b8:60: c7:c6:26:cc:3e:95:c3:8c:80:97:1d:cf:8f:37:58: b3:5e:c0:03:bc:65:ed:66:ee:9a:db:3a:13:74:74: 72:c4:ba:7c:57:45:33:74:12:cc:5f:c1:76:4e:d5: 27:0b:d1:71:a3:0b:06:9f:06:dd:bf:89:61:81:78: 4a:c1:05:3e:cc:8e:6c:c8:b0:0f:88:e9:d1:01:c7: 49:c0:8d:92:4c:61:9e:1e:84:ca:de:54:c7:73:71: f8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:34:8C:4D:83:59:1F:7E:54:FC:57:5F:8C:5D:AF:69:84:8D:2E:10 X509v3 Authority Key Identifier: keyid:E5:90:1C:96:C7:47:E9:16:2C:AE:FE:50:14:0A:E5:32:1B:23:C5:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5ZAclsdH6RYsrv5QFArlMhsjxXw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:69:72:44:29:9c:e9:86:b1:05:a4:55:80:ab:d6:2b:36:e4: c5:ea:fa:bf:61:e4:7b:16:08:fa:b8:44:23:6a:c6:2f:11:cb: dc:89:88:9e:4c:07:24:f8:c0:07:1f:e4:f7:18:7a:e9:ef:78: 9e:2e:3c:78:96:5a:e1:52:0f:85:ac:89:1f:d6:bf:16:e9:13: 23:85:e7:30:09:b7:4d:68:95:55:ed:29:ff:82:33:ed:47:3a: 30:c6:8a:00:47:1b:f2:f6:a5:8b:43:97:53:5e:8a:6a:f3:2f: 2b:69:30:70:89:93:44:a8:56:66:a9:28:70:66:c0:58:bf:f8: 9f:30:79:bb:0e:3a:42:c9:59:ab:ed:60:d4:5b:6c:6c:95:c6: 8a:b3:74:4f:3d:81:cd:7d:71:90:cd:ba:36:ab:fb:0c:d8:39: f0:43:bb:7e:c5:9d:a8:9d:8c:0f:05:ff:df:98:76:98:03:c3: 0b:75:07:e7:95:f8:8e:1a:82:1e:49:62:8a:0c:b8:4e:ef:99: c5:54:09:81:d8:d1:8c:9a:88:53:cf:c6:98:49:6b:12:82:2a: 61:2f:8f:24:86:33:e2:20:03:25:f8:02:5d:2b:21:57:b0:20: b6:7e:f3:f6:31:78:be:3c:0c:59:dd:2a:fe:3c:84:40:1c:a9: 9a:d8:f9:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFENQ2J0MtwJclRVMWZVAcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1OTAxYzk2Yzc0N2U5MTYyY2FlZmU1MDE0MGFlNTMyMWIy M2M1N2MwHhcNMjYwMjEwMDEwMDU2WhcNMjYwMjExMDEwMDU2WjAzMTEwLwYDVQQD Eyg1YzM0OGM0ZDgzNTkxZjdlNTRmYzU3NWY4YzVkYWY2OTg0OGQyZTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5r4h6mY0sW2LN6kgt4hyD6OIOlu1 TTixN4FWq3F4UdekHNe0tSBAOnn0jM4OIrl2ult7j5l9gy1NU5D0J/P13nfegL8a dAUY4Y9vGMF5JbjklD7KP3eTHuU2dTS2WPz0c5iOQQQp60B5xqofVCBeqMVjiHQe XPJCxk/ZbOl0c92RrVvYcOgsK3HN2nL/TnBX+0i/+jeW2MQB++/iN9EPLDj8uGDH xibMPpXDjICXHc+PN1izXsADvGXtZu6a2zoTdHRyxLp8V0UzdBLMX8F2TtUnC9Fx owsGnwbdv4lhgXhKwQU+zI5syLAPiOnRAcdJwI2STGGeHoTK3lTHc3H4TwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFw0jE2DWR9+VPxXX4xdr2mEjS4QMB8GA1UdIwQY MBaAFOWQHJbHR+kWLK7+UBQK5TIbI8V8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVpBY2xzZEg2UllzcnY1UUZBcmxNaHNqeFh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8wNDAwNzAtNjRiMC00NmY4LWEzNjAt MDIyMDYzMDNkNzEzLzEvNVpBY2xzZEg2UllzcnY1UUZBcmxNaHNqeFh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8wNDAwNzAtNjRiMC00NmY4LWEzNjAtMDIyMDYzMDNkNzEz LzEvNVpBY2xzZEg2UllzcnY1UUZBcmxNaHNqeFh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC2lyRCmc 6YaxBaRVgKvWKzbkxer6v2HkexYI+rhEI2rGLxHL3ImInkwHJPjABx/k9xh66e94 ni48eJZa4VIPhayJH9a/FukTI4XnMAm3TWiVVe0p/4Iz7Uc6MMaKAEcb8vali0OX U16KavMvK2kwcImTRKhWZqkocGbAWL/4nzB5uw46QslZq+1g1FtsbJXGirN0Tz2B zX1xkM26Nqv7DNg58EO7fsWdqJ2MDwX/35h2mAPDC3UH55X4jhqCHkliigy4Tu+Z xVQJgdjRjJqIU8/GmElrEoIqYS+PJIYz4iADJfgCXSshV7Agtn7z9jF4vjwMWd0q /jyEQBypmtj5iA== -----END CERTIFICATE-----Generated at Tue Feb 10 02:53:37 2026 by rpki-client